Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Acu3rZ-F1KrdSJjpP2UUN06M-w.cer
File: 0Acu3rZ-F1KrdSJjpP2UUN06M-w.cer (raw, json)
Hash identifier: AYFSAvFWht13eEtd5Aw4ivkhRkuxY0YJZxnA7/pR+GI=
Subject key identifier: D0:07:2E:DE:B6:7E:17:52:AB:75:22:63:A4:FD:94:50:DD:3A:33:EC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B40B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916B33E/2F66B57AB83E11E7A01D6650C4F9AE02/0Acu3rZ-F1KrdSJjpP2UUN06M-w.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916B33E/2F66B57AB83E11E7A01D6650C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 01 Aug 2023 17:04:58 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 18020
AS: 38544
AS: 45251
AS: 45454
AS: 55449
AS: 55803
IP: 49.156.24.0/21
IP: 101.0.64.0/18
IP: 103.14.64.0/22
IP: 103.18.196.0/22
IP: 103.208.216.0/22
IP: 103.237.108.0/22
IP: 103.250.20.0/22
IP: 110.173.128.0/19
IP: 111.67.0.0/19
IP: 111.118.160.0/20
IP: 116.90.0.0/18
IP: 125.214.64.0/20
IP: 137.59.248.0/22
IP: 150.129.12.0/22
IP: 163.53.248.0/22
IP: 175.41.40.0/22
IP: 182.160.128.0/18
IP: 202.4.224.0/20
IP: 202.45.150.0/23
IP: 202.130.44.0/22
IP: 203.16.60.0/23
IP: 203.19.59.0/24
IP: 203.98.69.0 -- 203.98.71.255
IP: 203.98.73.0/24
IP: 203.98.75.0/24
IP: 203.98.79.0 -- 203.98.80.255
IP: 203.98.83.0 -- 203.98.86.255
IP: 203.98.88.0/24
IP: 203.98.91.0 -- 203.98.93.255
IP: 203.98.95.0/24
IP: 203.123.59.0/24
IP: 223.27.0.0/19
IP: 2400:a600::/32
IP: 2401:fc00::/32
IP: 2401:fe00::/32
IP: 2402:9400::/32
IP: 2407:7800::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111627 (0x1b40b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 1 17:04:58 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A916B33E/serialNumber=D0072EDEB67E1752AB752263A4FD9450DD3A33EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:2b:68:fc:81:20:c7:84:ac:89:b6:1a:0d:56:
9c:64:82:5d:03:eb:65:a2:1f:24:12:9e:a5:f5:3b:
a5:fa:cd:cb:9b:cb:2a:37:11:b7:70:fd:2f:43:3a:
e8:50:4c:06:d9:13:cc:61:2e:1b:d9:70:ce:96:df:
5c:cb:25:0a:4f:10:77:2c:68:5c:ab:2d:22:24:5d:
08:da:06:82:58:86:b6:6b:a4:32:ae:9b:eb:88:24:
47:ff:6c:14:8b:87:0e:56:0e:68:a1:77:55:35:7d:
0c:18:00:00:ac:5f:8c:a7:ed:1a:80:fb:02:1c:cf:
46:6a:ff:06:13:0f:93:cd:6e:4a:6e:d7:36:76:50:
e7:80:11:58:fe:09:02:2b:90:50:ac:df:48:6c:35:
e7:95:71:03:68:f2:e8:f7:12:87:94:e4:26:eb:5c:
11:24:1d:6b:dd:5e:28:65:92:39:1f:33:d6:fb:4b:
d7:7a:1d:39:5f:38:60:07:cb:84:47:04:4e:0f:72:
5b:22:4e:4f:c4:da:c4:97:c2:1d:70:65:34:76:c5:
a5:62:9b:8e:b5:10:34:a8:a7:c6:f0:57:3e:f2:97:
ac:76:fe:67:e9:5e:2c:81:ef:d2:c8:a7:cf:d0:4e:
bf:8d:ce:63:73:54:c6:3f:83:8a:07:81:3e:ce:d6:
d7:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:07:2E:DE:B6:7E:17:52:AB:75:22:63:A4:FD:94:50:DD:3A:33:EC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916B33E/2F66B57AB83E11E7A01D6650C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916B33E/2F66B57AB83E11E7A01D6650C4F9AE02/0Acu3rZ-F1KrdSJjpP2UUN06M-w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18020
38544
45251
45454
55449
55803
sbgp-ipAddrBlock: critical
IPv4:
49.156.24.0/21
101.0.64.0/18
103.14.64.0/22
103.18.196.0/22
103.208.216.0/22
103.237.108.0/22
103.250.20.0/22
110.173.128.0/19
111.67.0.0/19
111.118.160.0/20
116.90.0.0/18
125.214.64.0/20
137.59.248.0/22
150.129.12.0/22
163.53.248.0/22
175.41.40.0/22
182.160.128.0/18
202.4.224.0/20
202.45.150.0/23
202.130.44.0/22
203.16.60.0/23
203.19.59.0/24
203.98.69.0-203.98.71.255
203.98.73.0/24
203.98.75.0/24
203.98.79.0-203.98.80.255
203.98.83.0-203.98.86.255
203.98.88.0/24
203.98.91.0-203.98.93.255
203.98.95.0/24
203.123.59.0/24
223.27.0.0/19
IPv6:
2400:a600::/32
2401:fc00::/32
2401:fe00::/32
2402:9400::/32
2407:7800::/32
Signature Algorithm: sha256WithRSAEncryption
3e:db:8b:97:1f:7b:dd:c7:36:0f:2f:81:23:0b:34:cf:fd:8a:
ab:cb:34:13:55:27:ad:72:de:79:be:90:41:5a:46:0d:ca:e5:
80:48:b0:25:b7:83:07:f4:73:b9:56:ee:43:15:9f:4d:3c:ec:
eb:64:1f:1b:a7:50:c6:09:0b:29:33:69:6e:68:12:eb:85:c0:
63:9a:48:81:6a:c2:a4:99:ed:69:eb:88:7f:50:28:82:e8:05:
f1:ca:ea:a6:d9:6f:14:f9:ee:f3:c0:55:07:8a:e6:1d:ca:a9:
83:ac:66:86:6a:81:8c:52:f7:82:75:6c:0c:e3:27:be:99:3b:
94:7a:c8:d4:2a:a7:6b:d5:2e:35:e4:8e:40:7e:38:98:51:48:
c0:1f:7e:9d:bb:c0:9f:0e:ae:77:1e:f0:60:c1:ab:13:d4:b2:
97:25:8d:26:42:3a:d9:38:18:4e:63:2f:6c:b2:87:3f:26:ab:
20:d2:a7:19:de:f5:eb:aa:1f:8e:85:a8:fb:d2:a5:1c:3f:3d:
82:38:fe:20:66:93:d6:a9:d9:88:3a:ef:18:1b:a7:48:89:ce:
f1:83:d8:af:6c:39:4f:09:74:dc:6f:99:36:b6:4c:f4:b8:87:
e9:b7:78:74:56:c5:3a:08:53:9b:53:db:0b:8d:66:ed:41:da:
bd:38:36:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:39 2024 by rpki-client on console-ams.rpki-client.org